e00b2c30a6a36d215bf48555d35c224c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e00b2c30a6a36d215bf48555d35c224c_JaffaCakes118
Size

160KB
MD5

e00b2c30a6a36d215bf48555d35c224c
SHA1

f85a30843ce3a56c18588aac7a2b83b43152adb0
SHA256

f2d5875a2a844bfc7e26069f5b19be29ca94da8da165b622a14cec60000d258a
SHA512

3d8613aa54125b3289bc50fc8032b547ed67404b0fec04c66e9dcbdb8b67326fc07e616a9be29d2968120eda447ce333af32fcfb8da5fa7ace709270e39f92d8
SSDEEP

3072:TV/yQ70CuLX5/Mma97cXNEaDlTpS4Qf8C9YuYQT8oBaUn8GNijS85dhwv:TZyU0FLZO97cXN5vS4fC9Y4QoAi8G3UI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e00b2c30a6a36d215bf48555d35c224c_JaffaCakes118

Files

e00b2c30a6a36d215bf48555d35c224c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

929ebce196ba54f4b5beea260eb08c24

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
GetCommState
lstrcpyA
lstrlenA
GetWindowsDirectoryA
LoadLibraryA
GetProcAddress
CreateFileA
VirtualAlloc

user32

AnyPopup
AppendMenuA
ArrangeIconicWindows
ChangeDisplaySettingsExA
ChangeDisplaySettingsExW
ChangeDisplaySettingsW
CharUpperA
ChildWindowFromPointEx
ClipCursor
CreateDialogIndirectParamA
CreateMenu
CreatePopupMenu
DdeAddData
DdeConnectList
DdeGetData
DefMDIChildProcW
DefWindowProcA
DeregisterShellHookWindow
DialogBoxIndirectParamW
DlgDirSelectComboBoxExA
DragObject
DrawAnimatedRects
DrawCaption
DrawFrame
DrawMenuBar
DrawStateW
DrawTextA
DrawTextW
EnableMenuItem
EndMenu
EndPaint
EnumDisplaySettingsA
EnumDisplaySettingsW
EnumPropsExW
FlashWindowEx
FreeDDElParam
GetAncestor
GetClassLongW
GetClassNameW
GetClipboardSequenceNumber
GetClipboardViewer
GetDCEx
GetDlgItemInt
GetKeyNameTextW
GetKeyboardState
GetMenuItemInfoA
GetMenuStringA
GetScrollBarInfo
GetTitleBarInfo
GetWindowRect
GetWindowTextW
GetWindowWord
HiliteMenuItem
InSendMessage
InSendMessageEx
InsertMenuItemA
InvalidateRect
IsCharAlphaA
IsCharUpperA
IsClipboardFormatAvailable
LoadBitmapW
LoadMenuIndirectW
LockSetForegroundWindow
LookupIconIdFromDirectory
MessageBoxExW
MoveWindow
OemToCharBuffA
OpenIcon
PostQuitMessage
RealGetWindowClass
RegisterWindowMessageA
RemovePropW
ScrollDC
SendNotifyMessageW
SetCapture
SetClipboardData
SetCursorPos
SetDebugErrorLevel
SetDeskWallpaper
SetDlgItemInt
SetDlgItemTextA
SetDoubleClickTime
SetMenuInfo
SetProcessDefaultLayout
SetProcessWindowStation
SetPropA
SetShellWindow
SetUserObjectInformationA
SetWindowContextHelpId
SetWindowsHookExW
ShowOwnedPopups
SwapMouseButton
ToUnicodeEx
UnregisterDeviceNotification

ole32

CLSIDFromProgIDEx
CoAddRefServerProcess
CoBuildVersion
CoDeactivateObject
CoDisableCallCancellation
CoEnableCallCancellation
CoFileTimeNow
CoFreeAllLibraries
CoFreeUnusedLibraries
CoGetClassObject
CoGetInstanceFromIStorage
CoGetInterfaceAndReleaseStream
CoGetStdMarshalEx
CoGetTreatAsClass
CoInitializeEx
CoInitializeSecurity
CoMarshalHresult
CoQueryAuthenticationServices
CoQueryReleaseObject
CoReactivateObject
CoRegisterClassObject
CoRegisterPSClsid
CoRegisterSurrogateEx
CoResumeClassObjects
CoRevokeClassObject
CoRevokeMallocSpy
CoSetCancelObject
CoSetProxyBlanket
CoTaskMemFree
CreateBindCtx
CreateDataAdviseHolder
CreateFileMoniker
CreateGenericComposite
CreateItemMoniker
DcomChannelSetHResult
DllDebugObjectRPCHook
DllGetClassObjectWOW
GetHGlobalFromStream
HBRUSH_UserFree
HDC_UserMarshal
HENHMETAFILE_UserFree
HGLOBAL_UserUnmarshal
HICON_UserMarshal
HMETAFILEPICT_UserFree
HMETAFILEPICT_UserMarshal
HMETAFILE_UserFree
HMETAFILE_UserMarshal
HWND_UserSize
IsAccelerator
MkParseDisplayName
MonikerRelativePathTo
OleConvertOLESTREAMToIStorageEx
OleCreateFromFile
OleCreateLink
OleCreateLinkFromDataEx
OleCreateLinkToFileEx
OleCreateMenuDescriptor
OleCreateStaticFromData
OleGetClipboard
OleIsRunning
OleLockRunning
OleNoteObjectVisible
OleRegEnumVerbs
OleRegGetUserType
OleSave
OleSetContainedObject
OleSetMenuDescriptor
PropVariantCopy
ReadClassStm
ReadOleStg
SNB_UserMarshal
STGMEDIUM_UserMarshal
StgCreateDocfile
StgCreateDocfileOnILockBytes
StgIsStorageFile
StgOpenPropStg
StringFromGUID2
StringFromIID
UtConvertDvtd32toDvtd16
UtGetDvtd16Info
UtGetDvtd32Info
WriteStringStream

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 980B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text2
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

929ebce196ba54f4b5beea260eb08c24

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 1024B - Virtual size: 980B

.text Size: 156KB - Virtual size: 155KB

.text2 Size: 1024B - Virtual size: 800B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 1024B - Virtual size: 980B

.text
Size: 156KB - Virtual size: 155KB

.text2
Size: 1024B - Virtual size: 800B

.reloc
Size: 2KB - Virtual size: 1KB